6f6216d2f3c34c8ebb8c5f2137a7ca32398642f9e55d5a7bdec57ebaf19e4b62

Sharing

Copy URL Twitter E-mail

General

Target

6f6216d2f3c34c8ebb8c5f2137a7ca32398642f9e55d5a7bdec57ebaf19e4b62
Size

563KB
MD5

5d5cb58138ce1535d1586109d360da90
SHA1

7256f361e83d8fe963647a8e6c0a9b57058bd322
SHA256

6f6216d2f3c34c8ebb8c5f2137a7ca32398642f9e55d5a7bdec57ebaf19e4b62
SHA512

e9c3841764c6bca6445fdf2c862bb7abf6737513f19383574e741a26f6f63fc62c13808129546e65a5993dc75af6540717f59146d90f89f4bb70dc34e6fede6c
SSDEEP

12288:qma3RjHsil104tjX9ZrBDih6i2W7KzKSSkErls:w9HVl1ltjX93ih6+OzKZkEry

Score

N/A

Malware Config

Signatures

Files

6f6216d2f3c34c8ebb8c5f2137a7ca32398642f9e55d5a7bdec57ebaf19e4b62
.dll windows x86

99c5d365847477f2a3929e9621cd3ba0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreatePopupMenu
IsWindow
LoadStringA
RegisterWindowMessageA
MessageBoxA

ole32

CoInitialize
CoTaskMemFree
CoUninitialize
UtGetDvtd32Info
CoCreateInstance

kernel32

lstrlenA
lstrcpyA
CloseHandle
CreateFileA
CreateMutexA
CreateThread
DeleteFileA
DeviceIoControl
DisableThreadLibraryCalls
FreeEnvironmentStringsA
FreeLibrary
GetConsoleFontSize
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetExitCodeThread
GetFileSize
GetFileTime
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
OutputDebugStringA
QueryPerformanceCounter
ReadFile
ReleaseMutex
SetFilePointer
SetSystemPowerState
SetUnhandledExceptionFilter
SetupComm
Sleep
TerminateProcess
TlsAlloc
TlsFree
UnhandledExceptionFilter
VirtualAlloc
WaitForSingleObject
WritePrivateProfileSectionA
lstrcatA
lstrcmpA

winmm

midiOutShortMsg
waveOutReset
midiOutGetDevCapsA
midiOutClose
midiOutReset
midiOutOpen

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey

Exports

Exports

AsVoidPtr
FrozenModules
_AfterFork
set_add_alpha
set_oFFs
set_strip_error_numbers

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99c5d365847477f2a3929e9621cd3ba0

Headers

File Characteristics

Imports

user32

ole32

kernel32

winmm

advapi32

Exports

Exports

Sections

.text Size: 85KB - Virtual size: 85KB

.rdata Size: 341KB - Virtual size: 341KB

.data Size: 106KB - Virtual size: 106KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 85KB - Virtual size: 85KB

.rdata
Size: 341KB - Virtual size: 341KB

.data
Size: 106KB - Virtual size: 106KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 3KB - Virtual size: 3KB